7 matches found
GLSA-202311-11 : QtWebEngine: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202311-11 QtWebEngine: Multiple Vulnerabilities - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-2294 -...
Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1
23.1.2.1033-alt1 built April 4, 2023 Yandex Browser Team in task 317282 March 20, 2023 Yandex Browser Team - browser updated to 23.1.2 + High CVE-2022-4436: Use after free in Blink Media. + High CVE-2022-4437: Use after free in Mojo IPC. + High CVE-2022-4438: Use after free in Blink Frames. + Hig...
Updated chromium-browser-stable packages fix security vulnerability
The chromium-browser-stable package has been updated to the new 108 branch with the 108.0.5359.94 release, fixing many bugs and 29 vulnerabilities, together with 107.0.5304.121 and 108.0.5359.71. Some of the security fixes are - CVE-2022-4174: Type Confusion in V8. Reported by Zhenghang Xiao...
Chromium: CVE-2022-4186 Insufficient validation of untrusted input in Downloads
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
CVE-2022-4186
Insufficient validation of untrusted input in Downloads in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass Downloads restrictions via a crafted HTML page. Chromium security severity: Medium...
CVE-2022-4186
CVE-2022-4186 affects Google Chrome/Chromium, describing insufficient validation of untrusted input in Downloads. Prior to 108.0.5359.71, an attacker who convinces a user to install a malicious extension could bypass Download restrictions via a crafted HTML page. The CVE is labeled Medium severit...
CVE-2022-4186
Insufficient validation of untrusted input in Downloads in Google Chrome prior to 108.0.5359.71 allowed an attacker who convinced a user to install a malicious extension to bypass Downloads restrictions via a crafted HTML page. Chromium security severity: Medium...